Re: Discarding uploaded binary packages

To: debian-devel@lists.debian.org
Subject: Re: Discarding uploaded binary packages
From: Jakub Wilk <jwilk@debian.org>
Date: Tue, 16 Oct 2012 13:01:23 +0200
Message-id: <[🔎] 20121016110123.GA6405@jwilk.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20121016062105.GA2940@albatross.gern.madduck.net>
References: <[🔎] CANTw=MNag1=MZG3GiUCyGXsVRBjDKc62_WNLYHP5juXo=_4AGw@mail.gmail.com> <[🔎] CAEwx8oQ5AFKUSSsJ=STXQA4bPSAhChE6TXYC8=a4725igcbc_A@mail.gmail.com> <[🔎] 20121016062105.GA2940@albatross.gern.madduck.net>

* martin f krafft <madduck@debian.org>, 2012-10-16, 08:21:

This is my opinion but I admit I have not followed previousdiscussions on the subject....
http://lists.debian.org/debian-security/2004/09/msg00014.html
We have not cared enough for almost 20 years that 9 out of 10 binarypackages in use (i386 until 2005, amd64 since then) are built onmachines that are individually maintained according to widely varyingsecurity standards to do anything about it, AFAICT.

What makes a buildd more secure than a machine of J. Random Developer?I'm honestly curious.


--
Jakub Wilk

Reply to:

Follow-Ups:
- Re: Discarding uploaded binary packages
  - From: Russell Coker <russell@coker.com.au>
- Re: Discarding uploaded binary packages
  - From: Tollef Fog Heen <tfheen@err.no>

References:
- Discarding uploaded binary packages
  - From: Michael Gilbert <mgilbert@debian.org>
- Re: Discarding uploaded binary packages
  - From: olivier sallou <olivier.sallou@gmail.com>
- Re: Discarding uploaded binary packages
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Bug#690673: ITP: ruby-integration -- Ruby library for numerical integration
Next by Date: Re: Discarding uploaded binary packages
Previous by thread: Re: Discarding uploaded binary packages
Next by thread: Re: Discarding uploaded binary packages
Index(es):
- Date
- Thread